CH20 - Course Quiz

Question 1

A packet sniffer is a program that queries a network interface and collects packets in a file called a ______________ file?

capture
log
flow cache
syslog

Answer 1

capture

Question 2

In NetFlow, flows are stored in a _____________?

log
flow cache
packet
frame

Answer 2

flow cache

Question 3

An agent can solicit information from an NMS with the ____________ protocol data unit (PDU)?

set
get
response
trap

Answer 3

trap

Question 4

It is a good idea to give root access to critical log files for performance reasons?

True
False

Answer 4

False

Question 5

The SNMP Manager requests and processes information from the ____________ devices?

opened
closed
managed
privileged

Answer 5

managed

Question 6

Which underlying protocol enables network monitoring tools to work?

TCP
SNMP
UDP
SMTP

Answer 6

SNMP (Simple Network Management Protocol)

Question 7

A single flow in NetFlow is a sequence of packets from one specific place to another?

True
False

Answer 7

True

Question 8

Which program is an example of a powerful and open source protocol analyzer?

wireshark
syslog
cisco network assistant (CNA)
PerfMon

Answer 8

Wireshark

Question 9

On which port does NMS receive/listen?

160
161
162
163

Answer 9

162 (Network Management System)

Question 10

Which tool was developed for packet flow monitoring and was subsequently included in Cisco Routers and Switches?

NetFlow
Wireshark
PerfMon
Syslog

Answer 10

NetFlow

Question 11

Interface monitors track the quality and utilization of traffic through a physical _____________ or ports on a single device?

network interface card (NIC)
port
switch
frame

Answer 11

port

Question 12

In the case of a Switch, it is typical for packet sniffers to connect to an interface using a _____________ port?

virtual
mirrored
promiscuous
closed

Answer 12

mirrored

Question 13

Which one function is sent when an SNMP Manager wants to query an agent?

Set
Get
Response
Trap

Answer 13

Get

Question 14

Which term does Performance Monitor use when referring to the monitored aspect of the System?

facilities
counters
modes
characteristics

Answer 14

counters

Question 15

The current version of SNMP is SNMPv3?

True
False

Answer 15

True

Question 16

Which tool is used to create a baseline on Windows Systems?

Performance Monitor
Cacti
Syslog
NetFlow

Answer 16

Performance Monitor

Question 17

What User Datagram Protocol (UDP) ports does SNMP use for unsecure communication?

61 and 62
610 and 612
161 and 162
10162 and 10161

Answer 17

161 and 162

Explanation:
Secure TLS SNMP = 10161 and 10162

Question 18

Which program is an example of graphing tool that could be used to show everything about specific switches?

NetFlow
Cacti
Syslog
Cisco Network Assistant (CNA)

Answer 18

Cacti

Question 19

An SNMP System has up to ______________ core functions (depending on the version of SNMP)?

two
four
six
eight

Answer 19

eight

Question 20

Performance Monitors use system ____________ files to track performance over time?

Access Control List (ACL)
flow cache
routing table
log

Answer 20

log

Question 21

Which core function is sent by the agent after the SNMP manager queries an agent with a GetRequest or GetNextRequest?

Set
Get
Response
Trap

Answer 21

Response

Question 22

Which sensors monitor environmental factors, such as external temperatures, humidity levels in the server room, issues with electrical load, and more?

interface
environmental
response
trap

Answer 22

environmental

Question 23

All operating systems come with some form of baseline tools?

True
False

Answer 23

True

Question 24

NetFlow is another name for SNMP?

True
False

Answer 24

False

Question 25

Which interface statistic value increases when packets are received that are shorter than Ethernet's minimum size of 64 bytes? encapsulation link runts giants

Answer 25

runts

Question 26

An NMS can tell an agent to make changes to the information it queries and sends, called variables, through a ________________ protocol data unit (PDU)? Set Get Response Trap

Answer 26

Set

Question 27

Managed devices run software called ________________? robots switches drones agents

Answer 27

agents

Question 28

In NetFlow, a single flow is a sequence of _________________ from one specific place to another? frames packets segments cylinders

Answer 28

packets

Question 29

If you want to know how hard your network is working, us a ________________? management information base flow cache performance manager interface monitor

Answer 29

interface monitor

Question 30

A ___________ is a centralized location for technicians and administrators, used to manage all aspects of the Network?

Answer 30

Network Operations Center (NOC)

Question 31

On an SNMP managed network, a _________________ program could create graphs and diagrams that display any set of the data received?

Answer 31

graphing

Question 32

SNMP adds security using _______________?

Answer 32

Transport Layer Security (TLS)

Question 33

In packet flow monitrong, a single __________________ is a sequence of packets from one specific place to another?

Answer 33

flow

Question 34

With interface monitoring, ___________________ references how much of the port's total bandwidth is being used?

Answer 34

utilization

Question 35

______________________ track the bandwidth and utilization of one or more interfaces on one or more devices?

Answer 35

Interface Monitor

Question 36

The most common macOS and Linux Performance Monitor tool is called ___________________?

Answer 36

Syslog

Question 37

A ____________________ tracks the performance of some aspect of a system over time and lets you know when things aren't normal?

Answer 37

Performance Monitor

Question 38

__________________________ are the computers within a Network that are receiving the most data?

Answer 38

Top Listeners

Question 39

SNMP uses _______________________ to categorize the data that can be queried (and subsequently analyzed)?

Answer 39

Management Information Bases (MIB)

Question 40

The ____________________ is the defacto network management protocol for TCP/IP Networks?

Answer 40

Simple Network Management Protocol (SNMP)

Question 41

The _________________ utility can quickly query any SNMP device directly from a computer's terminal?

Answer 41

snmpwalk

Question 42

The common term for each of the SNMP System core functions is ________________?

Answer 42

Protocol Data Unit (PDU)

Question 43

Describe the ports SNMP uses for unsecure and secure communications?

Answer 43

SNMP Managers use UDP Ports 162 or 10162 with Transport Layer Security (TLS). SNMP Agents use Ports 161 or 10161 with Transport Layer Security (TLS).

Question 44

List the four major types of monitoring tools?

Answer 44

Packet (Sniffers) Protocol (Analyzers) (Interface) Monitors (Performance) Monitors

Question 45

Describe a baseline and explain how a baseline can point to problems on a Server or the Network?

Answer 45

A Baseline is a log of normal operational performance to give you a picture of your network and servers when they are working correctly. A major change in these values can point to problems on a server or network as a whole.

Question 46

How should an administrator enable NetFlow in order to use it?

Answer 46

NetFlow is Enabled on the Device, if the device doesn't support NetFlow, you can use stand-alone probes that can monitor maintenance ports on the unsupported device and send the information to the NetFlow collector.

Question 47

Identify three components in a Managed Network?

Answer 47

Managed (Devices) SNMP (Manager) SNMP (Agent)

Question 48

Describe the two most common performance monitor tools?

Answer 48

Windows Performance Monitor (perfmon.exe) | Syslog (found in macOS and Linux)

Question 49

What are SNMP Alerts and how are they disseminated?

Answer 49

Alerts, Notifications - they are sent directly to techs - via SMS text messaging and email alerts - when their intervention is required.

Question 50

Describe the key component that enables performance monitors to track performance over time?

Answer 50

Logs - They store information about the performance of some particular aspect of a system.

Question 51

Briefly list the versions of SNMP?

Answer 51

SNMPv1 SNMPv2 SNMPv3

Question 52

Explain the purpose of applications like Cacti?

Answer 52

They enable you to see very quickly essential facts about your Network Hardware.

Question 53

Briefly describe a packet sniffer?

Answer 53

It's a program that queries a Network interface and collects packets in a file called a capture file. Might sit on a single computer or perhaps on a Router or a dedicated piece of hardware.

Question 54

Explain why access to active logs must be carefully controlled and explain how this can be accomplished?

Answer 54

Because logs often contain private or sensitive data.

Question 55

Identify additional terms for utilities that analyze packets?

Answer 55

Packet (Sniffer) (Packet) Aalyzer (Protocol) Analyzer (Network) Analyzer